IBM Support

PM64540: SIGNATURE OF SIGNED JAR FILES BROKEN DURING APPLICATION DEPLOYMENT

Fixes are available

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Product Version: WebSphere Application Server 7.0.0.17
    
    Operating System and Additional Info:
    
    Linux, version 2.6.18-238.1.1.el5
    Java version = 1.6.0, Java Compiler = j9jit24, Java VM name =
    IBM J9 VM
    
    Problem Description:
    
    Deploy an application with "Use Binary Configuration"
    enabled, and change the sequence of class loading after the
    deployment.
    
    The MANIFEST.MF of a signed jar in this application will be
    modified, which will break the signature of the signed jar.
    
    Run the command "jarsigner -verify" for the jar file, the
    following output will be seen:
    
    jarsigner: java.lang.SecurityException: Invalid signature file
    digest for Manifest main attributes
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:  All users of IBM WebSphere Application      *
    *                  Server V7.0 who have an application         *
    *                  containing signed JAR files.                *
    ****************************************************************
    * PROBLEM DESCRIPTION: java.lang.SecurityException: Invalid    *
    *                      signature file digest for               *
    *                      Manifest main attributes                *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    The application is not able to access resources in the signed
    JAR file because the signature is broken. When you run the
    command "jarsigner -verify" for the jar file, the following
    output will be seen:
    java.lang.SecurityException: Invalid signature file digest for
    Manifest main attributes
    Each time the application server extracts or saves JAR files
    it rewrites the MANIFEST.MF file of the JAR file.  This breaks
    the signature of the JAR file.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    PM64540

  • Reported component name

    WEBSPHERE APP S

  • Reported component ID

    5724J0800

  • Reported release

    700

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2012-05-13

  • Closed date

    2012-06-05

  • Last modified date

    2012-06-05

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WEBSPHERE APP S

  • Fixed component ID

    5724J0800

Applicable component levels

  • R700 PSY

       UP



Document information

More support for: WebSphere Application Server
General

Software version: 7.0

Reference #: PM64540

Modified date: 05 June 2012